Researchers at Ben-Gurion University have published a paper on SmartAttack, a covert channel technique that uses consumer smartwatches to exfiltrate data from air-gapped systems via ultrasonic sound. The research — covered in detail by SecurityWeek — demonstrates that physical isolation does not eliminate the risk from advanced adversaries with prior physical access to the target environment.
Technical Architecture of SmartAttack Methodology
Developed by Dr. Mordechai Guri, the SmartAttack technique employs Binary Frequency Shift Keying (B-FSK) modulation to transmit data through acoustic channels. The system operates within the ultrasonic frequency spectrum, remaining completely inaudible to human operators. The encoding scheme assigns 18.5 kHz to represent binary “0” and 19.5 kHz for binary “1”, creating a reliable data transmission protocol.
The attack sequence begins with initial system compromise through traditional vectors such as infected USB devices, supply chain infiltration, or social engineering tactics. Once the malicious payload is deployed within the target environment, it systematically harvests critical information including authentication credentials, encryption keys, and keystroke logs. The malware then converts this sensitive data into ultrasonic signals transmitted through the computer’s built-in speakers.
Smartwatch Integration as Covert Data Receiver
The most innovative aspect of SmartAttack involves utilizing consumer smartwatches as sophisticated data collection devices. A specialized application installed on the wearable device continuously monitors ambient acoustic conditions, identifying and isolating the encoded ultrasonic transmissions. The smartwatch’s processing capabilities enable real-time demodulation of the received signals, reconstructing the original data payload.
Following successful data capture, the compromised information is exfiltrated through conventional communication channels including Wi-Fi networks, Bluetooth connections, or cellular data services. This multi-stage approach effectively bridges the air gap without requiring any direct network connectivity to the isolated system.
Performance Characteristics and Environmental Factors
Experimental testing reveals that SmartAttack effectiveness depends significantly on environmental conditions and hardware specifications. The maximum transmission range extends between 6 to 9 meters under optimal conditions, while data transfer rates vary from 5 to 50 bits per second. Signal quality degrades proportionally with increased distance and transmission speed, and positioning of the smartwatch relative to the acoustic source critically impacts reception reliability.
The attack’s stealth characteristics present particular concerns for security professionals. Ultrasonic transmissions remain completely undetectable to human operators, while smartwatches appear as innocuous accessories that rarely trigger security screening protocols in sensitive facilities.
Implications for Critical Infrastructure Security
Air-gapped systems serve as the backbone for numerous critical applications including government facilities, military installations, nuclear power plants, and financial trading floors. These environments rely on physical network isolation as a primary security control, making the SmartAttack discovery particularly significant for threat modeling and risk assessment processes.
The research demonstrates that sophisticated adversaries can potentially overcome air-gap protections through carefully orchestrated multi-stage attacks. This capability shifts the threat landscape from external network-based attacks toward insider threats and advanced persistent threat scenarios involving physical access to secure facilities.
Defensive Countermeasures and Mitigation Strategies
Comprehensive policy enforcement represents the most effective defense against SmartAttack vectors. Organizations should implement strict prohibitions on wearable devices within secure perimeters, including smartwatches, fitness trackers, and other IoT-enabled accessories. Physical removal of audio output capabilities from air-gapped systems eliminates the attack vector entirely, though this may impact legitimate operational requirements.
Technical countermeasures include deployment of ultrasonic jamming systems that generate interference within the relevant frequency bands. However, this approach requires careful engineering to avoid disrupting legitimate equipment that may operate within similar frequency ranges. Regular acoustic monitoring and anomaly detection can also help identify unauthorized ultrasonic transmissions.
SmartAttack joins a long line of academic research into air-gap covert channels — acoustic, thermal, optical, and electromagnetic. The practical bar for exploitation remains high: an attacker needs to compromise the air-gapped machine first and place a smartwatch within 6–9 metres. For organizations running genuinely air-gapped infrastructure, the takeaway is to reinforce physical access controls and wearable device policies rather than to treat this as an imminent operational threat. The full paper includes detailed methodology and measurement results.
